I'm using ubuntu 22.04 and want to login with an ssh user that has only access to iptables and ip6tables. So the user should login and can only input, delete and update iptables and ip6tables, nothing else.
The reason I would like to do is, is that I only allow access to port 80 and 443 on my webserver to the ip-range of Cloudflare. Every night I check if Cloudflare has updated their ip-range by reading this file https://www.cloudflare.com/ips-v4/ and then update the ip-range in my iptables with a php script. Access to ssh is limited to my ip-address in the firewall and the SSH user "iptables" can only login with my ip-address by adding AllowUsers to my sshd_config.
Is it possible to only allow the SSH user "iptables" to have access to iptables and ip6tables (input, update and flush) and how do I have to configure this user?